A secure one-time password authentication scheme using smart cards without limiting login times

Authors:
Ya-Fen Chang;Chin-Chen Chang;Jui-Yi Kuo
Affiliations:
National Chung Cheng University, Chiayi, Taiwan, R.O.C.;National Chung Cheng University, Chiayi, Taiwan, R.O.C.;National Chung Cheng University, Chiayi, Taiwan, R.O.C.
Venue:
ACM SIGOPS Operating Systems Review
Year:
2004

Citing 3
Cited 2

Undetectable on-line password guessing attacks

ACM SIGOPS Operating Systems Review
Comments on the S/KEY user authentication scheme

ACM SIGOPS Operating Systems Review
Security enhancement for optimal strong-password authentication protocol

ACM SIGOPS Operating Systems Review

A secure and traceable E-DRM system based on mobile device

Expert Systems with Applications: An International Journal
An efficient One-Time Password authentication scheme using a smart card

International Journal of Security and Networks

Quantified Score

Hi-index	0.00

Visualization

Abstract

With the one-time password concept, the S/Key scheme is widely utilized by the protocols with limited login times to defend against replay attack. By employing the simple and unidirectional hash function, the improved version of the S/Key scheme is proposed to withstand spoofing attack, pre-play attack and off-line dictionary attack. However, the schemes limit login times. Hence, we propose a scheme, preserving the same properties and withstanding the stolen-verifier attack, without limiting the login times.